DE60135449D1 - Intrusion detection in data processing systems - Google Patents

Intrusion detection in data processing systems

Info

Publication number
DE60135449D1
DE60135449D1 DE60135449T DE60135449T DE60135449D1 DE 60135449 D1 DE60135449 D1 DE 60135449D1 DE 60135449 T DE60135449 T DE 60135449T DE 60135449 T DE60135449 T DE 60135449T DE 60135449 D1 DE60135449 D1 DE 60135449D1
Authority
DE
Germany
Prior art keywords
intrusion detection
data processing
attack
processing systems
collector
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
DE60135449T
Other languages
German (de)
Inventor
Dominique Alessandri
James F Riordan
Andreas Wespi
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Application granted granted Critical
Publication of DE60135449D1 publication Critical patent/DE60135449D1/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)
  • Geophysics And Detection Of Objects (AREA)
  • Burglar Alarm Systems (AREA)

Abstract

Described is apparatus for testing an intrusion detection system in a data processing system. The apparatus comprises an attack generator for generating attack traffic on a communications path in the data processing system. A collector receives responses generated by the intrusion detection system on receipt of the attack traffic. A controller coupled to the attack generator and the collector varies the attack traffic generated by the attack generator in dependence on the response received from the intrusion detection system by the collector. <IMAGE>
DE60135449T 2001-06-14 2001-06-14 Intrusion detection in data processing systems Expired - Lifetime DE60135449D1 (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
EP01810577A EP1267545B1 (en) 2001-06-14 2001-06-14 Intrusion detection in data processing system

Publications (1)

Publication Number Publication Date
DE60135449D1 true DE60135449D1 (en) 2008-10-02

Family

ID=8183966

Family Applications (1)

Application Number Title Priority Date Filing Date
DE60135449T Expired - Lifetime DE60135449D1 (en) 2001-06-14 2001-06-14 Intrusion detection in data processing systems

Country Status (4)

Country Link
US (1) US7568228B2 (en)
EP (1) EP1267545B1 (en)
AT (1) ATE406026T1 (en)
DE (1) DE60135449D1 (en)

Families Citing this family (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040073617A1 (en) 2000-06-19 2004-04-15 Milliken Walter Clark Hash-based systems and methods for detecting and preventing transmission of unwanted e-mail
US20060015942A1 (en) 2002-03-08 2006-01-19 Ciphertrust, Inc. Systems and methods for classification of messaging entities
US7693947B2 (en) 2002-03-08 2010-04-06 Mcafee, Inc. Systems and methods for graphically displaying messaging traffic
US7124438B2 (en) 2002-03-08 2006-10-17 Ciphertrust, Inc. Systems and methods for anomaly detection in patterns of monitored communications
US8132250B2 (en) 2002-03-08 2012-03-06 Mcafee, Inc. Message profiling systems and methods
US7694128B2 (en) 2002-03-08 2010-04-06 Mcafee, Inc. Systems and methods for secure communication delivery
US8578480B2 (en) 2002-03-08 2013-11-05 Mcafee, Inc. Systems and methods for identifying potentially malicious messages
US7903549B2 (en) 2002-03-08 2011-03-08 Secure Computing Corporation Content-based policy compliance systems and methods
US7870203B2 (en) * 2002-03-08 2011-01-11 Mcafee, Inc. Methods and systems for exposing messaging reputation to an end user
US8561167B2 (en) 2002-03-08 2013-10-15 Mcafee, Inc. Web reputation scoring
US20030172291A1 (en) 2002-03-08 2003-09-11 Paul Judge Systems and methods for automated whitelisting in monitored communications
US8635690B2 (en) 2004-11-05 2014-01-21 Mcafee, Inc. Reputation based message processing
US7626940B2 (en) * 2004-12-22 2009-12-01 Intruguard Devices, Inc. System and method for integrated header, state, rate and content anomaly prevention for domain name service
US7602731B2 (en) * 2004-12-22 2009-10-13 Intruguard Devices, Inc. System and method for integrated header, state, rate and content anomaly prevention with policy enforcement
US7937480B2 (en) 2005-06-02 2011-05-03 Mcafee, Inc. Aggregation of reputation data
US8316447B2 (en) * 2006-09-01 2012-11-20 Mu Dynamics, Inc. Reconfigurable message-delivery preconditions for delivering attacks to analyze the security of networked systems
US7415385B2 (en) * 2006-11-29 2008-08-19 Mitsubishi Electric Research Laboratories, Inc. System and method for measuring performances of surveillance systems
US7949716B2 (en) 2007-01-24 2011-05-24 Mcafee, Inc. Correlation and analysis of entity attributes
US8214497B2 (en) 2007-01-24 2012-07-03 Mcafee, Inc. Multi-dimensional reputation scoring
US8763114B2 (en) 2007-01-24 2014-06-24 Mcafee, Inc. Detecting image spam
US7779156B2 (en) 2007-01-24 2010-08-17 Mcafee, Inc. Reputation based load balancing
US8179798B2 (en) 2007-01-24 2012-05-15 Mcafee, Inc. Reputation based connection throttling
US8185930B2 (en) 2007-11-06 2012-05-22 Mcafee, Inc. Adjusting filter or classification control settings
US8045458B2 (en) 2007-11-08 2011-10-25 Mcafee, Inc. Prioritizing network traffic
US8160975B2 (en) 2008-01-25 2012-04-17 Mcafee, Inc. Granular support vector machine with random granularity
US8589503B2 (en) 2008-04-04 2013-11-19 Mcafee, Inc. Prioritizing network traffic
US8751629B2 (en) * 2008-06-18 2014-06-10 Camber Defense Security And Systems Solutions, Inc. Systems and methods for automated building of a simulated network environment
CN102812431A (en) 2010-03-22 2012-12-05 Lrdc系统有限公司 A method of identifying and protecting the integrity of a set of source data
US8621638B2 (en) 2010-05-14 2013-12-31 Mcafee, Inc. Systems and methods for classification of messaging entities
KR20130126814A (en) * 2012-04-26 2013-11-21 한국전자통신연구원 Traffic flooding attack detection and in-depth analysis devices and method using data mining
CN104135490A (en) * 2014-08-14 2014-11-05 浪潮(北京)电子信息产业有限公司 Intrusion detection system (IDS) analysis method and intrusion detection system
US9973528B2 (en) 2015-12-21 2018-05-15 Fortinet, Inc. Two-stage hash based logic for application layer distributed denial of service (DDoS) attack attribution
CN112422557B (en) * 2020-11-17 2023-06-27 中国信息安全测评中心 Attack testing method and device for industrial control network

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5892903A (en) * 1996-09-12 1999-04-06 Internet Security Systems, Inc. Method and apparatus for detecting and identifying security vulnerabilities in an open network computer communication system
US6453345B2 (en) * 1996-11-06 2002-09-17 Datadirect Networks, Inc. Network security and surveillance system
CA2200994C (en) * 1997-03-25 2001-07-31 Digital Security Controls Ltd. Walk-test control circuit for security alarm device
US5961644A (en) * 1997-09-19 1999-10-05 International Business Machines Corporation Method and apparatus for testing the integrity of computer security alarm systems
US6088804A (en) * 1998-01-12 2000-07-11 Motorola, Inc. Adaptive system and method for responding to computer network security attacks
US6711127B1 (en) * 1998-07-31 2004-03-23 General Dynamics Government Systems Corporation System for intrusion detection and vulnerability analysis in a telecommunications signaling network
US6574737B1 (en) * 1998-12-23 2003-06-03 Symantec Corporation System for penetrating computer or computer network
WO2001033339A1 (en) * 1999-11-03 2001-05-10 Accenture Llp Framework for integrating existing and new information technology applications and systems
US7278159B2 (en) * 2000-09-07 2007-10-02 Mazu Networks, Inc. Coordinated thwarting of denial of service attacks
US7702806B2 (en) * 2000-09-07 2010-04-20 Riverbed Technology, Inc. Statistics collection for network traffic
US7124440B2 (en) * 2000-09-07 2006-10-17 Mazu Networks, Inc. Monitoring network traffic denial of service attacks
US20020032871A1 (en) * 2000-09-08 2002-03-14 The Regents Of The University Of Michigan Method and system for detecting, tracking and blocking denial of service attacks over a computer network
US7168093B2 (en) * 2001-01-25 2007-01-23 Solutionary, Inc. Method and apparatus for verifying the integrity and security of computer networks and implementation of counter measures

Also Published As

Publication number Publication date
US20020194469A1 (en) 2002-12-19
US7568228B2 (en) 2009-07-28
EP1267545B1 (en) 2008-08-20
ATE406026T1 (en) 2008-09-15
EP1267545A1 (en) 2002-12-18

Similar Documents

Publication Publication Date Title
ATE406026T1 (en) INTRUSION DETECTION IN DATA PROCESSING SYSTEMS
EP1265402A3 (en) System and method for detecting collisions in a shared communications medium
DE60324549D1 (en) SYSTEM AND METHOD FOR PROCESSING NEWS APPENDICES
US20020101918A1 (en) System and method for device co-location discrimination
ATE335641T1 (en) MONITORING SYSTEM, VEHICLE MONITORING DEVICE, MONITORING METHOD, MONITORING PROGRAM, COMPUTER READABLE RECORDING MEDIUM CONTAINING THE SAME
WO2002015560A3 (en) A system and method for capturing an image
CA2388373A1 (en) Distance detection system
EP1164545A4 (en) Signal processing device and method, and recording medium
HUP9700219A2 (en) An intelligent sensor for optical wheel alignment
RU98111821A (en) DEVICE FOR PLAYING THE IMAGE
DE69229772T2 (en) Device and method for monitoring the loss of power in a transmission system
FR2831736B1 (en) APPARATUS AND METHOD FOR GENERATING AN ERROR DETECTION INFORMATION SEQUENCE AND MONITORING APPARATUS AND METHOD FOR ERROR DETECTION
DK0889455T3 (en) Information system for users of a public transport network, which informs about the estimated wait time at the network stops
CA2210922A1 (en) Method and apparatus for tracking alignment in wireless optical communications
CA2361301A1 (en) Apparatus and method for an accelerated thumbwheel on a communication device
ATE407498T1 (en) MECHANISM FOR DETECTING IDENTITY FAKE-BASED ATTACKS IN A WIRELESS NETWORK
GB2375276B (en) Method and system of sound processing
ATE281731T1 (en) PACKET OUTPUT FACILITY AND PROCEDURE
DE60333325D1 (en) Network system, information processor and electronic device
DE69610434D1 (en) METHOD AND ARRANGEMENT FOR PERFORMANCE CONTROL IN A MOBILE TELEPHONE SYSTEM
EA200300582A1 (en) METHOD, OPTICAL RECORDING DEVICE, USE OF SUCH METHOD, OPTICAL RECORDING MEDIUM FOR USE IN METHOD AND DEVICE
JP2000314702A (en) Device and method for detecting salt-contaminated insulator
DE69228672D1 (en) Compression / expansion of image data
Dhivya et al. Wearable Navigation Device for Virtual Blind Guidance
ATE300828T1 (en) METHOD FOR TRANSMITTING DATA

Legal Events

Date Code Title Description
8320 Willingness to grant licences declared (paragraph 23)
8364 No opposition during term of opposition